| CPC H04L 9/3268 (2013.01) [H04L 9/321 (2013.01); H04L 9/3247 (2013.01); H04L 2209/80 (2013.01)] | 19 Claims |
|
1. A method for certificate revocation check during a subscription related procedure for a subscriber entity, the method being performed by the subscriber entity, the method comprising:
sending, by the subscriber entity, a nonce as a challenge towards a subscription management entity separately located at a different device from the subscriber entity to trigger generation of a fresh online certificate status protocol (OCSP) response that is to be transmitted by the subscription management entity to the subscriber entity;
receiving, by the subscriber entity, a message sent from the subscription management entity during remote subscriber identity module (SIM) provisioning for the subscriber entity, the message comprising a certificate and the OCSP response for the certificate, the OCSP response being bound to the nonce and indicating a revocation state of the certificate; and
determining, by the subscriber entity, whether the certificate has been revoked or not by checking the revocation state as indicated in the OCSP response.
|